Personal data and integrity

Liseberg’s goal is to ensure that everyone whose personal data is handled by Liseberg feels confident that their privacy is respected and that adequate steps are taken to protect the personal data that we have access to.

HOW PERSONAL DATA IS PROCESSED BY LISEBERG

Liseberg’s goal is to ensure that everyone whose personal data is processed by Liseberg feels confident that their privacy is respected and that adequate steps are taken to protect the personal data that we have access to.

Liseberg processes personal data in accordance with Regulation (EU) 2016/679, also known as the General Data Protection Regulation (GDPR). GDPR is intended to prevent infringement of your personal privacy as a result of the way personal data is processed. Your personal data may only be used with your consent, or if this is supported by GDPR or other legislation.

1. INTRODUCTION

 This information explains how Liseberg AB, corporate identity number 556023-6811 (“Liseberg”), processes your personal data and what rights you have. This information is aimed at you if you:

  • Are a customer of Liseberg – when you buy tickets, visit us, stay with us or make purchases in our shops and restaurants.
  • Are a member of Liseberg, are linked to a company agreement, have a Liseberg annual pass or have a log-in account.
  • Visit our website or our social medial platforms, use our apps, or connect to Liseberg’s WiFi network.
  • Take part in our marketing activities or customer surveys.
  • Contact us in some other way, for example at customer services or by making a booking.

Your privacy is important to us. We are therefore keen to ensure that the personal data that is gathered about you is stored and processed in a safe and reliable way, and in compliance with data protection law.

We encourage you to read through this information carefully. If you have any questions about how your personal data is processed, you are welcome to contact us. Our contact details are at the end of this information text.

2. PERSONAL DATA

2.1 Who is responsible for your personal data?

 Liseberg is the data controller responsible for the personal data we process.

2.2 What is personal data?

Personal data is all information that can be linked to you directly or indirectly (i.e. along with other information), such as your name, photo, personal ID number, IP address, and details of your previous visits, accommodation and purchase history.

3. WHAT PERSONAL DATA DO WE PROCESS ABOUT YOU AND WHY?

In this section we explain how your personal data is used so that we can provide you with relevant experiences, services and offers.

3.1 When you buy tickets, visit us, stay with us or make purchases in our shops and restaurants.

When you buy tickets, visit us, stay with us or shop in our shops and restaurants, we process the following data that you provide us with:

  • Your name (and names of accompanying persons) and your contact details.
  • Your personal ID number, for example, when you buy a Liseberg annual pass.
  • Your membership number, company agreement number and/or Liseberg annual pass number if you provide these at the time of booking/purchase.
  • Details of your previous visits, accommodation and purchase history, such as prices and accommodation.
  • Information on the need for an escort or wheelchair space during the trip, if such information is needed.
  • Details of payments and purchase history.

 We process your personal data in order to:

  • Identify you as a visitor, for example during ticket checks.
  • Take payment for admission, accommodation, goods in shops, or restaurant visits, including handling card payments.
  • Detect and prevent fraud in connection with card payments.
  • Process and deliver your purchases in accordance with our terms of purchase, for example, by providing the product you have purchased.
  • Notify you (by app, text message, e-mail or similar electronic communications) about changes in our services and products, such as changes in the park programme or offerings.
  • Market our services and products, e.g. by e-mail and text message.
  • Compile statistics on bookings made through a corporate agreement to enable reporting to the company (usually your employer).
  • Provide statistics on purchases of visits, accommodation and goods, in order to improve our services.

If you choose to pay for accommodation through a personal Liseberg invoice, with or without instalment, we also share personal data about you with our payment service provider. For more information on how we use personal data when you pay by invoice, see our terms of purchase.

Legal basis for processing data: We process your personal data on the basis of: performance of a contract when we provide admission, accommodation and/or products; on the basis of legitimate interests when we have a legitimate interest in using your data for statistical purposes and to market our services, safeguard payment and prevent fraud; and on the basis of a legal obligation in order to manage opt-out settings, personal escorts and wheelchair spaces.

Storage period: We save data about you for up to 12 months after your visit, accommodation or purchase, partly as a basis for handling any complaints.

3.2 Compensation claims

If you contact us with a claim for compensation, we process:

  • Details that you personally provide to us, such as name (and name of accompanying persons) contact details, payment information, account information, case history.
  • Your personal ID number, for example if you seek compensation under insurance.
  • Details of the reason for your compensation claim.
  • Documents that you enclose with your claim, such as receipts or medical certificates.

We process your personal data in order to:

  • Process and assess your compensation claim.
  • Identify and prevent fraud in connection with claims for compensation.
  • Gather statistics about your case in order to improve our services.

 Legal basis for processing data: We process your personal data on the basis of: legal obligation when we handle a claim for personal injury; performance of a contract when we handle other complaints regarding products; and legitimate interests when we have a legitimate interest in improving our services and identifying and preventing fraud.

Storage period: To ensure traceability, we save your personal data for up to 36 months after the case has been closed. If compensation is paid out for a case, we save the data for 7 years in accordance with the Swedish Accounting Act. Data from personal injury cases is saved until the case is statute-barred, and data from life annuity cases is kept for the lifetime of the person, so that the case can be reviewed.

3.3 If you are a member of Liseberg, are linked to a company agreement, have a Liseberg annual pass or log-in account

If you choose to become a member of Liseberg, are linked to a corporate agreement, buy a Liseberg annual pass and/or create a log-in account on our digital channels, we process:

  • Data that you or your employer provide to us, such as your name, personal ID number and contact details, including phone number and e-mail address.
  • Contact details and other information that we gather from the Swedish Personal Address Register (SPAR).
  • A customer number or user name that we create to identify you in our systems.

We process your personal data in order to:

  • Identify and manage your customer relationship with Liseberg.

Legal basis for processing: We process your personal data on the basis of performance of a contract in order to manage your customer relationship with Liseberg.

Storage period: We save your personal data for the duration of the customer relationship and for up to 3 months afterwards.

In the sections below you can read more about how we process your personal data depending on whether you are a member of Liseberg, are linked to a corporate agreement, have a Liseberg annual pass and/or have a log-in account. 

3.3.1 If you are a member of Liseberg

If you are a member of Liseberg we also process the following information in addition to that described above in sections 3.1, 3.2 and 3.3:

  • Details of your membership account, such as membership number, membership level and security code.
  • Details of your points balance, points-qualifying purchases and points withdrawals from us or our partners, as well as purchases in the Liseberg points shop.
  • Details of your visit, accommodation and purchase history. 

Personal data is processed in order to:

  • Manage your Liseberg membership and your points balance, including registration and payment with points.
  • Contact you with information and general offers, by e-mail or text message, for example.
  • Analyse and classify you with other customers based on the information you provide to us (e.g. age, place of residence, gender and specified preferences) and based on the way you use our services (visit, accommodation and purchase history).
  • Inform you about personalized and customized promotions, campaigns and benefits from us and our partners, by e-mail or text message, for example.
  • Compile and analyse statistics in order to improve our services, products and offers, including long-term analysis to identify trends over time.
  • Ensure the security of our services, to detect or prevent various types of illegal use or use that otherwise contravenes our terms and conditions.

Legal basis for processing data: We process your personal data on the basis of: performance of a contract when we fulfil our commitments to you as a member (for example, managing your membership and providing relevant offers) and on the basis of legitimate interests when we have a legitimate interest in using information about your visits, accommodation and purchases to compile statistics and to develop, improve and ensure the security of our services.

Storage period:
We save your personal data for the duration of your membership and for up to 3 months afterwards. To ensure traceability we save information about our communications with you for 12 months. Your visit, accommodation and purchase history are saved for up to 7 years for the purpose of our legitimate interest in analysing trends over time. If you end your relationship with Liseberg we anonymize the history of your visits, accommodation and purchases. 

3.3.2    If you are linked to a corporate agreement

If you are linked to a corporate agreement we also process the following information in addition to that described above in sections 3.1, 3.2 and 3.3:

  • Details of your link to a corporate agreement and your authorization under that agreement.
  • Invoicing information.
  • Details of your visit, accommodation and purchase history. 

Your personal data is processed in order to:

  • Manage your link to a corporate agreement.
  • Manage payment, such as the presentation of corporate account invoices.
  • Make it easier for you, your employer and your employer’s travel agent to book your accommodation.
  • Compile statistics on bookings and accommodation in order to report to corporate customers (usually your employer).
  • Analyse and classify you with other customers based on the information you provide to us (e.g. age, place of residence, gender and specified preferences) and based on the way you use our services (visits, accommodation and purchase history).
  • Contact you with information about general offers, personalized and customized offers, campaigns and benefits we offer by e-mail and text message, for example.
  • Compile and analyse statistics in order to improve our services, products and offers, including long-term analysis to identify trends over time.
  • Ensure the security of our services, to detect or prevent various types of illegal use or use that otherwise contravenes our terms and conditions.

 Legal basis for processing: We process your personal data on the basis of legitimate interests for the legitimate interests of our company and affiliated companies to manage and monitor accommodation within the company, to make it easier for you to book accommodation, and to fulfil our commitment to affiliated companies to provide you with relevant information. We also process your personal data on the basis of legitimate interests when we have a legitimate interest in using information about your visits, accommodation and purchases to compile statistics and to develop, improve and ensure the security of our services.

Storage period: We save your linked data for as long as you are linked to a corporate agreement. To ensure traceability, we save data about our communications with you for 12 months. Your visit, accommodation and purchase history are saved for up to 7 years for the purpose of our legitimate interest in analysing trends over time. If you end your relationship with Liseberg we anonymize the history of your visits, accommodation and purchases.

3.3.3    If you have a Liseberg annual pass

 If you have a Liseberg annual pass we also process the following information in addition to that described above in sections 3.1, 3.2 and 3.3:

  • Details of your annual pass, such as annual pass number, level, and period of validity.
  • Details of your visit, accommodation and purchase history.

Your personal data is processed in order to:

  • Manage your Liseberg annual pass, such as period of validity and bookings.
  • Enable the allocation of Liseberg points for your annual pass purchases if you subsequently decide to become a member of Liseberg.
  • Contact you with information and offers, by e-mail, app or text message, for example.
  • Compile and analyse statistics in order to improve our services, products and offers, including long-term analysis to identify trends over time.
  • Ensure the security of our services, to detect or prevent various types of illegal use or use that otherwise contravenes our terms and conditions.

Legal basis for processing: We process your personal data on the basis of performance of a contract when we provide services, and on the basis of legitimate interests when we have a legitimate interest in using information about your accommodation and purchases to compile statistics and to develop, improve and ensure the security of our services.

Storage period: We save your annual pass details for as long as you have an active annual pass and for a further 3 months to make it easier for you to re-subscribe as an annual pass customer within a short time period.

To ensure traceability, we save data about our communications with you for 12 months. Your visit, accommodation and purchase history are saved for up to 7 years for the purpose of our legitimate interest in analysing trends over time. If you end your relationship with Liseberg we anonymize the history of your visits, accommodation and purchases. 

3.3.4    If you have a log-in account

If you have a log-in account we also process the following information in addition to that described above in sections 3.1, 3.2 and 3.3:

  • Details of your log-in account, e.g. user name and password.
  • Information that you personally choose to save in your profile, such as credit card details and name, contact details and membership numbers of accompanying persons.
  • Information about your visit, accommodation and purchase history, or how you otherwise use our services or our digital channels, such as details of your latest log-ins.

Your personal data is processed in order to:

  • Manage your log-in account and make it easier for you to visit, make purchases and book accommodation in the future.
  • Contact you with information and general offers, by e-mail, app or text message, for example.
  • Compile and analyse statistics in order to improve our services, products and offers, including long-term analysis to identify trends over time.
  • Provide, maintain, test, improve and develop our digital services and the technical platform that is used to provide them.
  • Ensure the security of our services, to detect or prevent various types of illegal use or use that otherwise contravenes our terms and conditions.

Legal basis for processing: We process your personal data on the basis of performance of a contract when we provide services, and on the basis of legitimate interests when we and you have a legitimate interest in facilitating future accommodation bookings and using information about your visits, accommodation and purchases to compile statistics and to develop, improve and ensure the security of our services.

Storage period: We save your log-in details for as long as you actively use your log-in account (up to 6 months after your last use) or have some other active involvement with us (membership of Liseberg, link to corporate agreement or have a Liseberg annual pass). To ensure traceability, we save data about our communications with you for 12 months. Your visit, accommodation and purchase history are saved for up to 7 years for the purpose of our legitimate interest in analysing trends over time. If you end your relationship with Liseberg we anonymize the history of your visits, accommodation and purchases.

3.4 When you communicate with us

You can choose to communicate with Liseberg in many different ways, for example through social media, in the FAQ forum, comment functions, or through chat, phone calls and e-mail with our Customer Services, Bookings, Guest Services and the reception desks at our accommodation facilities.

When you communicate with us we process data that you have personally given to us, such as:

  • Name and contact details.
  • Information about your views, questions or case.

We process your personal data in order to:

  • Answer questions and manage your case, such as remedying faults, handling complaints and questions about lost property.
  • Deliver requested information, such as annual reports and sustainability reports.
  • Improve our services and the information we provide and publish on our website.
  • Analyse calls in order to improve our services.

Legal basis for processing: We process your personal data as part of our and your legitimate interest in handling your case (legitimate interests).

Storage period: We save your personal data for up 12 months after a case has been closed in order to ensure the traceability of your communications with us.

3.5 When you take part in marketing activities or customer surveys

In connection with marketing activities (lectures, competitions, campaigns, etc.) or in connection with customer surveys (questionnaires and interviews) we process the data you provide us with, including names and contact details.

We process your personal data in order to:

  • Manage the marketing activity or customer survey, including providing you with feedback.
  • Inform you and offer you new marketing activities and customer surveys.
  • Gather statistics from marketing activities and customer surveys in order to improve our services.

Legal basis for processing: We process your personal data for our and your legitimate interests, as described above (legitimate interests), and on the basis of performance of a contract for the administration of competitions. If our processing of data requires your consent, we will obtain your consent before processing begins.

Storage period: We initially save your personal data for 1 month from the end of the relevant activity.

3.6 When you connect to the Liseberg Wi-Fi network or use the Liseberg website, Liseberg apps and game apps

 

3.6.1 When you connect to the Liseberg Wi-Fi network

When you connect to the Liseberg Wi-Fi network we are the data controller responsible for processing personal data that is required to connect you to the Internet, but not for the subsequent processing or for the content of your communications on the Wi-Fi network. When you connect to the Liseberg Wi-Fi network we process your IP address, MAC address and time stamps. 

3.6.2 When you use the Liseberg website

We process your personal data in order to:

  • Gather data on how you interact with and use our website, for example when booking accommodation.
  • Gather information about your visits to our websites, using cookies. For more information about how we use cookies read here.

3.6.3 When you use Liseberg apps

We process your personal data in order to:

  • Manage your log-in account and make it easier for you to visit, make purchases and book accommodation in the future.
  • Contact you with information and general offers.
  • Compile and analyse statistics in order to improve our services, products and offers, including long-term analysis to identify trends over time.
  • Provide, maintain, test, improve and develop our digital services and the technical platform that is used to provide them.
  • Ensure the security of our services, to detect or prevent various types of illegal use or use that otherwise contravenes our terms and conditions.

 

3.6.4 When you use Liseberg game apps (Helix Game and AeroSpin app)

We process your personal data in order to:

  • Manage your log-in account and your game results. For more information about how we process your personal data, see https://www.liseberg.se/villkor/integritetspolicy-aerospin-appen/
  • Compile and analyse statistics in order to improve our services, products and offers, including long-term analysis to identify trends over time.
  • Provide, maintain, test, improve and develop our digital services and the technical platform that is used to provide them.
  • Ensure the security of our services, to detect or prevent various types of illegal use or use that otherwise contravenes our terms and conditions.

 Legal basis for processing: We process your personal data on the basis ofperformance of a contract when we provide Wi-Fi, and on the basis of legitimate interests to fulfil our legitimate interests in maintaining, testing and improving our digital tools and services.

Storage period: We save your personal data for 1 year after you have used our digital channels and for 3 months from the date you last connected to our Wi-Fi network.

3.7 When we have a legal obligation 

In addition to the situations described in the sections above, in certain cases we also process your personal data when we are obliged to by law, for example to comply with our accounting obligations or if requested by the authorities.

Liseberg is a municipal limited company, which means that the company must allow public access to information. This means that all documents, including personal data, submitted to us are public documents that may be disclosed to anyone that requests this. In some cases, however, the information may be considered confidential and will therefore not be disclosed.

Legal basis: When we process your personal data because we are obliged to by law we do so on the basis of a legal obligation. 

4. HOW LONG DO WE SAVE YOUR PERSONAL DATA?

Your personal data is only stored for as long as it is required to fulfil the purpose of processing, or as long as we are required to save it by law. Your data is then deleted or anonymized securely so that it can no longer be linked to you. Read more about how long we save your data for under each section in chapter 3. 

5. WHO DO WE SHARE YOUR PERSONAL DATA WITH?

Liseberg never sells your data to a third party. We may however share your personal data with the following groups of recipients:

  • Suppliers, within and outside the EU/EEA, who for example provide IT services, advertising services, deal with customer cases or handle payments and credit information on behalf of Liseberg.
  • Partners within and outside Sweden, for example in order to verify annual passes or membership.
  • Event partners, so that they can conduct the event and for other reasons that are described in their privacy policies.
  • If you book or travel under a corporate agreement, information about your purchases and travel history may be disclosed to companies with which we have an agreement (usually your employer).
  • Your bank when you use a bank ID for authorization, pay by card or by Swish.
  • Other recipients if required by law, other regulation or authority decision.

Recipients that process personal data on behalf of Liseberg must always enter a personal data assistant agreement with us to ensure that your data is processed correctly and safely. If we use suppliers that process your personal data on our behalf outside of the EU/EEA, we take special safety measures, such as signing agreements that include the standardized data transmission clauses adopted by the EU Commission and accessible on the EU Commission website.

If your personal data is shared with a recipient who is an independent personal data controller, such as an authority or bank, then the privacy policy and personal data processing information of the recipient apply. 

6. HOW DO WE PROTECT YOUR PERSONAL DATA?

Your privacy is important to us and we are therefore committed to security. We take steps to protect your data in accordance with the General Data Protection Regulation and established guidelines for information security. This means that we have routines and rules for protecting data, to ensure for example that we transmit your information securely and to ensure that staff only have access to the information they need to do their work. 

7. ABOUT COOKIES

When you visit our website we may also collect data and information about you by using cookies. For more information about how we use cookies, see https://www.liseberg.se/villkor/cookies/ 

8. YOUR RIGHTS

You have certain rights under data protection legislation. If you wish to use any of your rights, please contact us using the contact details in the next section.

  • Right of access to your personal data – you have the right to receive confirmation of whether we process your personal data and an extract of the data that is processed.
  • Right to rectification – you have the right to have incorrect information corrected.
  • Right to erasure – under certain circumstances you have the right to have your information deleted.
  • Right to object to processing on the basis of our legitimate interests and direct marketing purposes – you have the right to object to the processing of your personal data or to restrict the scope of processing.
  • Right to data portability –you have the right to demand that your personal data is transmitted by us to another company, authority or organisation. This right is limited to information provided by you. 

If you want to know more about data protection legislation and your rights, please read more here: https://www.datainspektionen.se

Liseberg has a Data Protection Officer (DPO) who ensures that Liseberg processes your personal data in a lawful, accurate and transparent manner. If you have a case you would like to address to our DPO, please make contact by e-mail or by phone.

Contact details Data Protection Officer:
Martin Brunhage
C/o Göteborgs stad, Intraservice
Phone: +46 31-367 83 18
[email protected]

If you consider that we are not processing your personal data in accordance with data protection legislation, please contact us using the contact details below. You are also entitled to complain to the Swedish Data Protection Authority.

9. HOW DO YOU OBJECT TO ELECTRONIC DIRECT MARKETING? 

Liseberg may use your e-mail address or mobile phone number for direct marketing. If you do not want us to use your e-mail address or mobile phone number for direct marketing, you are welcome to contact us and request that we delete your information.

You can contact us as follows:

  • To request removal of corporate information: [email protected]. Do not forget to give your name, address and personal ID number or corporate ID number. 
  • Other customers can request removal by contacting: [email protected]. Do not forget to give your name, address and personal ID number. 
  • You can also follow the link at the bottom of the e-mail newsletter from Liseberg to unsubscribe from e-mails from Liseberg.

10. CONTACT INFORMATION

Liseberg AB (corporate ID number 556023-6811) is the data controller responsible for processing your personal data. If you would like further information about how your personal data is processed, rectified or deleted, please contact us.

Liseberg AB
Att. Dataskyddsansvarig
Box 5053, 402 22 Göteborg, Sweden
Phone: 031-400 100
E-post: [email protected]

Contact details Data Protection Officer:
Martin Brunhage
C/o Göteborgs stad, Intraservice
Phone: +46 31-367 83 18
[email protected]

11. UPDATING OF INFORMATION TEXT 

This information text was last updated on 13 August 2018 and may be subject to change. If we make significant changes to the text we will notify you no later than 30 days before the change takes effect, by e-mail, text message, through services, or by publishing a new version on our website.